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DOUBLE ENCRYPTION OF SIGNATURES TO PREVENT TAMPERING 



!00 



ENCRYPT A1 KEY WITH B1 
KEY AND STORE ENCRYPTED 
A1 KEY IN NVRAM IN IN-CAR 
VIDEO UNIT 



/-202 



EVIDENCE OFFICER INSTALLS 
A NEW TAPE AND SUPPLIES B2 
KEY BY TEMPORARY INSERTION 
OF A KEY CHIP 



^204 



IN-CAR VIDEO UNIT USES B2 
DECRYPTION KEY TO DECRYPT 
ENCRYPTED A1 KEY STORED IN 
NVRAM AND STORED A1 KEY IN 
CLEAR IN VOLATILE RAM OR IN 
MEMORY THAT CAN BE ERASED. 
OFFICER GETS IN CAR AND 
SUPPLIES KEY CHIP WITH C1 KEY 



I 
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VIDEO FRAMES AND AUDIO 
DATA CORRESPONDING TO 
EACH VIDEO FRAME ARRIVES 
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IN-CAR VIDEO UNIT 
COMPUTES DIGITAL 
SIGNATURE ON EACH 
VIDEO AND 
ACCOMPANYING 
AUDIO FRAME 



FIG. 5 
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DOES A1 KEY IN CLEAR 
STILL EXIST? 



*YES. 



214 



ENCRYPT DIGITAL 
SIGNATURE ON 
EACH VIDEO AND 
AUDIO FRAME 
USING DECRYPTED 
A1 KEY 



NO 



ENCRYPT RESULTS 
FROM ENCRYPTION 
WITH A1 KEY 
USING C1 KEY 



212 



CARRY OUT 
PREDETERMINED 
TAMPER- 
PROOFING 
PROTOCOL 
SUITABLE FOR 
THIS APPLICATION 
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RECORD ENCRYPTED DIGITAL 
SIGNATURES AND UNENCRYPTED 
VIDEO AND AUDIO DATA 
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-224 



(START 



-226 



NO 



< 



IS A1 KEY STORED IN 
CLEAR IN IN-CAR VIDEO 
UNIT 

1 



'YES 
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HAS TAPE REMOVAL 
MICROSWITCH BEEN 
TRIPPED? 

T 



J NO 
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4 



YES' 

J— 



DO NOTHING ) 



ERASE DECRYPTED 
A1 KEY 
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TAPE HAS NOT BEEN 
ALTERED 



ye lV 
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MATCH? 



^-234 

^DECRYPT EACH ^ 
RECORDED 
VIDEO AND AUDIO 
FRAME SIGNATURE 
WITH C2 KEY 
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DECRYPT RESULTS 
WITH A2 KEY 



238 



COMPUTE DIGITAL 
SIGNATURE FOR 
EACH RECORDED 
VIDEO FRAME AND 
THE ACCOMPANYING 
AUDIO USING SAME 
DIGITAL SIGNATURE 
ALGORITHM AS USED 
BY IN-CAR VIDEO 
UNIT TO COMPUTE 
DIGITAL SIGNATURES 
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COMPARE DIGITAL ' 
SIGNATURES JUST 
COMPUTED FOR 
EACH FRAME TO 
DECRYPTED 
DIGITAL 
SIGNATURES 
DERIVED FROM 
RECORDED DIGITAL 
SIGNATURES FOR THE 
CORRESPONDING 
FRAME 
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>( TAPE HAS BEEN^I 
H ALTERED I 



FIG. 7 
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TRIPLE ENCRYPTION FRONT END, SINGLE ENCRYPTION BACK END 



ENCRYPT A1 KEY WITH 
C1 KEY AND THEN 
ENCRYPT RESULTS WITH 
B1 KEY AND STORE 
RESULTS IN NVRAM IN 
SECURITY SYSTEM 
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SECURITY SUPERVISOR OR 
SYSTEM INSTALLER 
INSTALLS A NEW TAPE 
AND SUPPLIES B2 KEY BY 
TEMPORARY INSERTION 
OR A KEY CHIP 



J_ 
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SECURITY VIDEO UNIT USES B2 
DECRYPTION KEY TO DECRYPT 
ENCRYPTION RESULTS STORED 
IN NVRAM AND STORES RESULTS 
IN VOLATILE RAM. 
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SECURITY OFFICER SUPPLIES 
C2 KEY BY INSERTING HER 
KEY CHIP INTO PORT IN 
SECURITY UNIT. SECURITY 
VIDEO UNIT USES C2 KEY TO 
DECRYPT RESULTS STORED 
IN VOLATILE RAM FROM 
PREVIOUS STEP AND STORES 
A1 KEY IN THE CLEAR IN 
VOLATILE RAM 
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VIDEO AND AUDIO 
DATA ARRIVES 



SECURITY VIDEO UNIT 
COMPUTES DIGITAL 
SIGNATURE ON EACH VIDEO 
FRAME AND ON 
ACCOMPANYING AUDIO DATA 



DOES A1 KEY IN CLEAR 
STILL EXIST? 



> 



YES 



_L 
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ENCRYPT DIGITAL 
SIGNATURE ON EACH 
VIDEO FRAME AND 
ACCOMPANYING AUDIO 
USING A1 KEY IN THE 
CLEAR 



♦ r 
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CARRY OUT 
PREDETERMINED 
TAMPER PROOFING 
PROTOCOL 
SUITABLE FOR 
THIS APPLICATION 



^268 



RECORD ENCRYPTED 
DIGITAL SIGNATURE AND 
UNENCRYPTED VIDEO AND 
AUDIO DATA 



FIG. 8 
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NO ENCRYPTION ON FRONT END, TRIPLE ENCRYPTION ON THE BACK END 



-270 



STORE A1 KEY IN 
NVRAM IN IN-CAR 
VIDEO UNIT 



EVIDENCE OFFICER 
SUPPLIES B1 KEY 
WHEN NEW TAPE 
INSTALLED. B1 KEY 
STORED IN VOLATILE 
RAM IN IN-CAR VIDEO 
SYSTEM 
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PATROL OFFICER GETS 
IN CAR AND SUPPLIES 
C1 KEY BY PLUGGING 
IN HIS KEY CHIP 
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VIDEO FRAMES START 
TO ARRIVE AS WELL AS 
AUDIO DATA THAT 
ACCOMPANIES EACH 
FRAME 
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IN-CAR VIDEO UNIT 
COMPUTES DIGITAL 
SIGNATURE ON EACH 
VIDEO AND 
ACCOMPANYING AUDIO 
FRAME 
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DO B1 
STILL 



AND C1 KEYS BOTH 
EXIST IN THE CLEAR 
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YES 
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IF EITHER B1 OR 
C1 ARE GONE, 
CARRY OUT 
PREDETERMINED 
TAMPER PROOFING 
PROTOCOL 
SUITABLE FOR THIS 
APPLICATION 

s. J 



ENCRYPT EACH ' 
DIGITAL SIGNATURE 
WITH A1 KEY 
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ENCRYPT RESULTS 
OFA1 ENCRYPTION 
STEP USING B1 KEY 
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ENCRYPT RESULTS ' 
OF B1 ENCRYPTION 
STEP USING C1 KEY , 
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RECORD TRIPLE ENCRYPTED 
DIGITAL SIGNATURE DATA 
AND UNENCRYPTED VIDEO 
AND AUDIO DATA 



FIG. 9 



